Back to search
CVE-2020-10718
Published: Sep 16, 2020
Modified: Aug 4, 2024
PUBLISHED
Description
A flaw was found in Wildfly before wildfly-embedded-13.0.0.Final, where the embedded managed process API has an exposed setting of the Thread Context Classloader (TCCL). This setting is exposed as a public method, which can bypass the security manager. The highest threat from this vulnerability is to confidentiality.
| Vendor | Product | Versions |
|---|---|---|
n/a | Wildfly | affected before wildfly-embedded-13.0.0.Final |
References
https://bugzilla.redhat.com/show_bug.cgi?id=1828476
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now